Add OEMCrypto tests for Cast prov 4 flow

Expected flow, which begins with a device that has already been
provisioned with Prov 4 stage 1:
1. OEMCrypto_InstallOEMPrivateKey()
2. OEMCrypto_GenerateCertificateKeyPair() -> wrapped_csr_priv
3. OEMCrypto_LoadDRMPrivateKey(wrapped_csr_priv)
4. OEMCrypto_PrepAndSignProvisioningRequest() to create a Prov 4
   provisioning request message type with a CAST request in the
   message body
5. Server sends a Prov 2 response. Server side derivation uses CSR keys
   to derive session key, mac keys, and encryption keys.
6. OEMCrypto_DeriveKeysFromSessionKey(), same derivation as server side
7. OEMCrypto_LoadProvisioning(), use derived keys to verify + decrypt

The OEMCrypto_LoadDRMPrivateKey() step can happen before or after the
PrepAndSignProvisioningRequest() call.

Test: tests fail
Bug: 259452440

Merged from https://widevine-internal-review.googlesource.com/172310

Change-Id: Id5e6737b187339ec93e3d0d03c28e2b379d60747

libwvdrmengine/oemcrypto/test/oec_session_util.h

@@ -368,6 +368,56 @@ class Provisioning40RoundTrip
   OEMCrypto_PrivateKeyType drm_key_type_;
 };
 
+class Provisioning40CastRoundTrip
+    : public RoundTrip<
+          /* CoreRequest */ oemcrypto_core_message::ODK_Provisioning40Request,
+          OEMCrypto_PrepAndSignProvisioningRequest,
+          /* CoreResponse */ ODK_ParsedProvisioning,
+          /* ResponseData */ RSAPrivateKeyMessage> {
+ public:
+  Provisioning40CastRoundTrip(Session* session,
+                        const std::vector<uint8_t>& encoded_rsa_key)
+      : RoundTrip(session), encryptor_(),
+        encoded_rsa_key_(encoded_rsa_key) {}
+
+  void PrepareSession();
+  void LoadDRMPrivateKey();
+  void CreateDefaultResponse() override;
+  void SignResponse();
+  void EncryptAndSignResponse() override;
+  OEMCryptoResult LoadResponse() override { return LoadResponse(session_); }
+  OEMCryptoResult LoadResponse(Session* session) override;
+  OEMCryptoResult LoadResponseNoRetry(Session* session, size_t* wrapped_key_length) ;
+
+  // Returned
+  const std::vector<uint8_t>& wrapped_drm_key() { return wrapped_drm_key_; }
+  const std::vector<uint8_t>& drm_public_key() { return drm_public_key_; }
+  OEMCrypto_PrivateKeyType drm_key_type() { return drm_key_type_; }
+  void set_allowed_schemes(uint32_t allowed_schemes) {
+    allowed_schemes_ = allowed_schemes;
+  }
+
+ protected:
+  bool RequestHasNonce() override { return true; }
+  void VerifyRequestSignature(const vector<uint8_t>& data,
+                              const vector<uint8_t>& generated_signature,
+                              size_t core_message_length) override;
+  // Verify the values of the core response.
+  virtual void FillAndVerifyCoreRequest(
+      const std::string& core_message_string) override;
+
+  uint32_t allowed_schemes_;
+  Encryptor encryptor_;
+  std::vector<uint8_t> wrapped_oem_key_;
+  std::vector<uint8_t> oem_public_key_;
+  OEMCrypto_PrivateKeyType oem_key_type_;
+  std::vector<uint8_t> wrapped_drm_key_;
+  std::vector<uint8_t> drm_public_key_;
+  OEMCrypto_PrivateKeyType drm_key_type_;
+  std::vector<uint8_t> encoded_rsa_key_;
+  std::vector<uint8_t> wrapped_rsa_key_;
+};
+
 class LicenseRoundTrip
     : public RoundTrip<
           /* CoreRequest */ oemcrypto_core_message::ODK_LicenseRequest,